PDFTranscoder does not block external resources
CVE-2022-38648
5.3MEDIUM
What is CVE-2022-38648?
Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics allows an attacker to fetch external resources. This issue affects Apache XML Graphics Batik 1.14.
Affected Version(s)
Apache XML Graphics Batik 1.14